| Page(s) : 1 ... 1165 1166 1167 1168 1169 1170 1171 1172 1173 1174 [1175] 1176 1177 1178 1179 1180 1181 1182 1183 1184 1185 ... | Result(s) : 301652 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-01-21 | CVE-2025-22825 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Desk Flexible PDF Coupons allows Stored XSS. This issue affect... |
| N/A | 2025-01-21 | CVE-2025-23997 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dev@tamara.co Tamara Checkout allows Stored XSS. This issue affec... |
| N/A | 2025-01-21 | CVE-2025-23998 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rara Theme UltraLight allows Reflected XSS. This issue affects Ul... |
| N/A | 2025-01-21 | CVE-2025-24001 | cve | Cross-Site Request Forgery (CSRF) vulnerability in PPO Vi?t Nam (ppo.vn) PPO Call To Actions allows Cross Site Request Forgery. This issue affects PPO Call To Actions: from n/a ... |
| 8.8 | 2025-01-21 | CVE-2024-10936 | cve | The String locator plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.6 via deserialization of untrusted input in the 'rec... |
| 5.4 | 2025-01-21 | CVE-2025-0371 | cve | The JetElements plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions up to, and including, 2.7.2.1 due to insufficient input san... |
| 6.1 | 2025-01-21 | CVE-2024-12005 | cve | The WP-BibTeX plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.1. This is due to missing or incorrect nonce validation ... |
| 7.5 | 2025-01-21 | CVE-2024-12104 | cve | The Visual Website Collaboration, Feedback & Project Management – Atarim plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the... |
| 6.1 | 2025-01-21 | CVE-2024-13404 | cve | The Link Library plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'searchll' parameter in all versions up to, and including, 7.7.2 due to i... |
| N/A | 2025-01-21 | CVE-2024-6466 | cve | NEC Corporation's WebSAM DeploymentManager v6.0 to v6.80 allows an attacker to reset configurations or restart products via network with X-FRAME-OPTIONS is not specified. |
| 7.5 | 2025-01-21 | CVE-2025-23184 | cve | A potential denial of service vulnerability is present in versions of Apache CXF before 3.5.10, 3.6.5 and 4.0.6. In some edge cases, the CachedOutputStream instances may not be ... |
| 5.5 | 2025-01-21 | CVE-2024-45091 | cve | IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a loc... |
| 5.3 | 2025-01-21 | CVE-2024-13536 | cve | The 1003 Mortgage Application plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.87. This is due the /inc/class/fnm/export.php fi... |
| N/A | 2025-01-21 | CVE-2025-23086 | cve | On most desktop platforms, Brave Browser versions 1.70.x-1.73.x included a feature to show a site's origin on the OS-provided file selector dialog when a site prompts the u... |
| N/A | 2025-01-20 | CVE-2025-24014 | cve | Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and j... |
| N/A | 2025-01-20 | CVE-2024-13454 | cve | Weak encryption algorithm in Easy-RSA version 3.0.5 through 3.1.7 allows a local attacker to more easily bruteforce the private CA key when created using OpenSSL 3 |
| 9.8 | 2025-01-20 | CVE-2024-45647 | cve | IBM Security Verify Access 10.0.0 through 10.0.8 and IBM Security Verify Access Docker 10.0.0 through 10.0.8 could allow could an unverified user to change the password of an ex... |
| N/A | 2025-01-20 | CVE-2024-51738 | cve | Sunshine is a self-hosted game stream host for Moonlight. In 0.23.1 and earlier, Sunshine's pairing protocol implementation does not validate request order and is thereby v... |
| 6.1 | 2025-01-20 | CVE-2025-22131 | cve | PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting (XSS) vulnerability in the code which translates the XLSX file into a HTML repres... |
| N/A | 2025-01-20 | CVE-2025-22620 | cve | gitoxide is an implementation of git written in Rust. Prior to 0.17.0, gix-worktree-state specifies 0777 permissions when checking out executable files, intending that the umask... |
| Page(s) : 1 ... 1165 1166 1167 1168 1169 1170 1171 1172 1173 1174 [1175] 1176 1177 1178 1179 1180 1181 1182 1183 1184 1185 ... | Result(s) : 301652 |
